2 matches found
CVE-2020-15232
In mapfish-print before version 3.24, a user can do to an XML External Entity (XXE) attack with the provided SDL style.
CVE-2020-15231
In mapfish-print before version 3.24, a user can use the JSONP support to do a Cross-site scripting.